Which malware type is used to hide its presence by intercepting and altering system processes?

A rootkit is a type of malware specifically designed to gain unauthorized access to a computer or network while hiding its presence. It achieves this by manipulating and altering system processes, making it difficult for security software to detect its existence. Rootkits often integrate themselves into the operating system’s kernel or other critical components, allowing them to monitor system activity and perform malicious actions without being noticed by the user or standard security measures.

The unique characteristic of rootkits is their ability to operate stealthily, often modifying system calls or using other techniques to intercept and mask their activities. This capability distinguishes them from other types of malware, which may not necessarily focus on concealment. For example, adware typically displays unwanted advertisements, worms replicate themselves across systems without hiding, and logic bombs trigger actions based on specific conditions without hidden persistence. Rootkits, therefore, pose a significant threat due to their clandestine nature and their potential to maintain long-term control over compromised systems.